Recently, Microsoft released a patch that fixes a critical vulnerability in the Windows’ crypto library.Continue reading “CVE-2020-0601: a critical Windows vulnerability discovered by…NSA!”
It was just a matter of time: the first “mass exploiting” of BlueKeep vulnerability is spotted in the wild.
If you haven’t already patched your servers, do it asap!
Today i’ll talk you briefly about the Windows 10 “Timeline“: a feature that can come in handy during a forensic analysis.
How to access it and how to analyze it?
The Windows Recycle Bin contains files that have been deleted by the user, but not yet purged from the system: a valuable source of evidence for an examiner.Continue reading “Windows Forensics: analysis of Recycle bin artifacts”
Stealth Falcon is a state-sponsored cyber espionage group that since 2012 targets political activists and journalists in the Middle East.Continue reading “Win32/StealthFalcon malware uses Windows Background Intelligent Transfer Service (BITS) to communicates to its C&C servers”